Denial of Service Vulnerability in Cisco Secure Firewall ASA and FTD Software
CVE-2026-20015

5.8MEDIUM

Key Information:

Vendor

Cisco
Status
Cisco Secure Firewall Adaptive Security Appliance (asa) Software
Cisco Secure Firewall Threat Defense (ftd) Software
Vendor
CVE Published:
4 March 2026

Badges

๐Ÿ‘พ Exploit Exists

What is CVE-2026-20015?

A vulnerability in the IKEv2 implementation within Cisco Secure Firewall ASA Software and Cisco Secure FTD Software allows an unauthenticated remote attacker to send specially crafted IKEv2 packets, resulting in a memory leak. This leak can exhaust system resources, leading to a denial of service condition. Affected devices may become unavailable, disrupting services across the network and requiring manual intervention to restore normal operations. Safeguarding your network against such vulnerabilities is essential to maintain continuous service availability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Cisco Secure Firewall Adaptive Security Appliance (ASA) Software 9.18.1

Cisco Secure Firewall Adaptive Security Appliance (ASA) Software 9.18.1.3

Cisco Secure Firewall Adaptive Security Appliance (ASA) Software 9.18.2

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:
5.8
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

JSON
.